Tag Archive: Kaspersky Lab

Kaspersky Lab_Mobile Virusology

The Volume of New Mobile Malware Tripled in 2015

The volume of malware targeting users of mobile devices grew more than three times in 2015, compared to 2014. The most dangerous threats in 2015 were ransomware, malware capable of obtaining unlimited rights on an infected device, and data stealers, including financial malware. These are main findings of the annual Mobile Virusology report prepared by the Kaspersky Lab Anti-malware Research group.

Kaspersky Lab_Infographics_Acecard_Map copy copy

Acecard Trojan: Android Users of Over 30 Banking and Payment Apps at Risk

Kaspersky Lab’s Anti-malware Research Team has detected one of the most dangerous Android banking Trojans ever seen. The Acecard malware is capable of attacking users of nearly 50 different online financial applications and services and is able to bypass the Google Play store’s security measures.

Figure 1_Kaspersky Lab_Social Networks copy

Social Network Sharing Makes Users an Easy Target for Cybercriminals

A quiz from Kaspersky Lab, with more than 1,000 Filipino respondents, has found that almost a third (30%) of social network users share their posts, check-ins and other personal info with everybody who is online – not just their friends. This is leaving the door wide open for cybercriminals to attack, as users remain unaware of just how public their private information can be on these channels.

Poseidon_Figure 2 copy copy

Kaspersky Lab Exposes the Poseidon Group: A Commercial Malware Boutique Operating on Land, Air and Sea

Kaspersky Lab’s Global Research and Analysis Team has announced the discovery of the Poseidon Group, an advanced threat actor active in global cyber-espionage operations since at least 2005. What makes the Poseidon Group stand out is that it’s a commercial entity, whose attacks involve custom malware digitally signed with rogue certificates deployed to steal sensitive data from victims to coerce them into a business relationship. In addition, the malware is designed to function specifically on English and Brazilian Portuguese Windows machines, a first for a targeted attack.

Carbanak and Metel_Figure 2 copy copy

Carbanak and beyond: banks face new attacks

A year after Kaspersky Lab warned that cyber-criminals would start to adopt the tools and tactics of nation-state backed APTs in order to rob banks, the company has confirmed the return of Carbanak as Carbanak 2.0 and uncovered two more groups working in the same style: Metel and GCMAN. They attack financial organizations using covert APT-style reconnaissance and customized malware along with legitimate software and new, innovative schemes to cash out.

Adwind_Figure 1 copy copy

Adwind: Malware-as-a-Service Platform that Hit more than 400,000 Users and Organizations Globally

10 February 2016 Kaspersky Lab’s Global Research and Analysis Team has published extensive research on the Adwind RAT, a cross-platform, multifunctional malware program also known as AlienSpy, Frutas, Unrecom, Sockrat, JSocket and jRat, and which is distributed through a single malware-as-a-service platform. According to the results of the investigation, conducted between 2013 and 2016, different versions of the Adwind malware have been used in attacks against at least 443,000 private users, commercial and non-commercial organizations around the world. The platform and the malware are still active.